Every CVE whose affected-product data names Franklioxygen Mytube, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2026-23837 — CVSS 9.8 (critical): MyTube is a self-hosted downloader and player for several video websites. A vulnerability present in version 1.7.65 and poetntially earlier…
CVE-2026-33890 — CVSS 9.8 (critical): MyTube is a self-hosted downloader and player for several video websites Prior to version 1.8.71, an unauthenticated attacker can register…
CVE-2026-33735 — CVSS 8.8 (high): MyTube is a self-hosted downloader and player for several video websites Prior to version 1.8.69, an authorization bypass in the…
CVE-2026-33935 — CVSS 7.5 (high): MyTube is a self-hosted downloader and player for several video websites Prior to version 1.8.72, an unauthenticated attacker can lock out…
CVE-2026-23848 — CVSS 6.5 (medium): MyTube is a self-hosted downloader and player for several video websites. Prior to version 1.7.71, a rate limiting bypass via…
CVE-2026-24139 — CVSS 6.5 (medium): MyTube is a self-hosted downloader and player for several video websites. Versions 1.7.78 and below do not safeguard against authorization…
CVE-2026-24140 — CVSS 2.7 (low): MyTube is a self-hosted downloader and player for several video websites. Versions 1.7.78 and below have a Mass Assignment vulnerability in…